×Dashboard Content and Code Licenses toggle key: L
KEV
The Known Exploited Vulnerabilities Catalog is provided by cisa.gov.
The content is public "For the benefit of the cybersecurity community and network defenders[...]
Organizations should use the KEV catalog as an input to their vulnerability management prioritization framework."
See https://www.cisa.gov/known-exploited-vulnerabilities-catalog.
EPSS
EPSS is provided by first.org. See EPSS at https://www.first.org/epss.
From the FAQ:
We grant the use of EPSS scores freely to the public, subject to the following conditions. We reserve the right to update the model and these webpages periodically, as necessary, though we will make every attempt to provide sufficient notice to users in the event of material changes. While membership in the EPSS SIG is not required to use or implement EPSS, we ask that if you are using EPSS, that you provide appropriate attribution where possible. EPSS can be cited either from this website (e.g. "See EPSS at https://www.first.org/epss), or as: Jay Jacobs, Sasha Romanosky, Benjamin Edwards, Michael Roytman, Idris Adjerid, (2021), Exploit Prediction Scoring System, Digital Threats Research and Practice, 2(3)
{metæffekt}
Dashboard Code
{metæffekt} code within the dashboard is made available under Apache License 2.0. All integrated third-party code parts are documented with their respective licenses, individually.
Dashboard Content
The content on the dashboard is based on the available data from external data sources. metaeffekt GmbH cannot guarantee that the information shown on the dashboard is complete, consistent and/or correct. The dashboard merely offers a best effort to collect and present the available information for further assessment.
Please note that the dashboard only coveys data available at the point in time the dashboard was generated. The dashboard will not automatically update content. In particular, data aggregated from external sources may be outdated at the time viewing. To ensure the data is most recent, the dashboard must be continuously regenerated.
While metaeffekt GmbH attempts to provide a best-effort in aggregating vulnerabilities a potential for false-positive and
false-negatives is inherent. The completeness of the vulnerabilities identified and aggregated in the dashboard always requires further review and consolidation.
Disclaimer of Warranty
Unless required by applicable law or agreed to in writing, metaeffekt GmbH provides the Work on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR PURPOSE. Recipients are solely responsible for determining the appropriateness of using or redistributing the dashboard and assume any risks associated with recipient's exercise of permissions under these terms.
Limitation of Liability
In no event and under no legal theory, whether in tort (including negligence), contract, or otherwise, unless required by applicable law (such as deliberate and grossly negligent acts) or agreed to in writing, shall metaeffekt GmbH or any data contributor be liable to a recipient for damages, including any direct, indirect, special, incidental, or consequential damages of any character arising as a result of these terms or out of the use or inability to use the dashboard (including but not limited to damages for loss of goodwill, work stoppage, computer failure or malfunction, or any and all other commercial damages or losses), even if metaeffekt GmbH or a data contributor has been advised of the possibility of such damages.
Accepting Warranty or Additional Liability
While redistributing the Dashboard or derivative Reports thereof, a recipient may choose to offer, and charge a fee for, acceptance of support, warranty, indemnity, or other liability obligations and/or rights consistent with these terms. However, in accepting such obligations, a recipeint may act only on its own behalf and on recipient's sole responsibility, not on behalf of metaeffekt GmbH or any data contributor, and only if recipient agrees to indemnify, defend, and hold each metaeffekt GmbH and all data contributors harmless for any liability incurred by, or claims asserted against, such metaeffekt GmbH or a data contributor by reason of recipient's accepting any such warranty or additional liability.
The sections Disclaimer of Warranty, Limitation of Liability, and Accepting Warranty or Additional Liability are based on the according sections from the Apache License 2.0.
CERT-EU
Creative Commons Attribution 4.0 International (CC-BY 4.0) (https://creativecommons.org/licenses/by/4.0/)
CERT-EU, The Cybersecurity Service for the European Union institutions, bodies, offices and agencies
© Cybersecurity Service for the Union institutions, bodies, offices and agencies (CERT-EU), 2023
Disclaimer:
This information is of a general nature only and is not intended to address the specific circumstances of any particular individual or entity not necessarily comprehensive, complete, accurate or up to date sometimes linked to external sites over which CERT-EU has no control and for which the CERT-EU assumes no responsibility not professional or legal advice (if you need specific advice, you should always consult a suitably qualified professional).
Copyright Notice:
The reuse policy of European Commission documents is implemented by Commission Decision 2011/833/EU of 12 December 2011 on the reuse of Commission documents (OJ L 330, 14.12.2011, p. 39). Unless otherwise noted, the reuse of this document is authorised under a Creative Commons Attribution 4.0 International (CC-BY 4.0) licence (https://creativecommons.org/licenses/by/4.0/). This means that reuse is allowed, provided appropriate credit is given and changes are indicated.
You may be required to clear additional rights if a specific content depicts identifiable private individuals or includes third-party works. To use or reproduce content that is not owned by the EU, you may need to seek permission directly from the rightsholders. Software or documents covered by industrial property rights, such as patents, trademarks, registered designs, logos and names, are excluded from the Commission's reuse policy and are not licensed to you.
GitHub Advisory Database
The GitHub Advisory Database is licensed under the Creative Commons Attribution 4.0 license. The attribution term may be fulfilled by linking to the GitHub Advisory Database at https://github.com/advisories or to individual GitHub Advisory Database records used, prefixed by https://github.com/advisories.
NVD
This product uses data from the NVD but is not endorsed or certified by the NVD.
ChartJs
The MIT License (MIT)
Copyright (c) 2014-2021 Chart.js Contributors
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
Bootstrap Icons
Bootstrap Icons
The MIT License (MIT)
Copyright (c) 2019-2020 The Bootstrap Authors
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
THE SOFTWARE.